Sourced fromexpress's releases.

4.19.2

What's Changed

• Improved fix for open redirect allow list bypass

Full Changelog:expressjs/express@4.19.1...4.19.2

4.19.1

What's Changed

• Fix ci after location patch by@​wesleytodd inexpressjs/express#5552
• fixed un-edited version in history.md for 4.19.0 by@​wesleytodd inexpressjs/express#5556

Full Changelog:expressjs/express@4.19.0...4.19.1

4.19.0

What's Changed

• fix typo in release date by@​UlisesGascon inexpressjs/express#5527
• docs: nominating@​wesleytodd to be project captian by@​wesleytodd inexpressjs/express#5511
• docs: loosen TC activity rules by@​wesleytodd inexpressjs/express#5510
• Add note on how to update docs for new release by@​crandmck inexpressjs/express#5541
• Prevent open redirect allow list bypass due to encodeurl
• Release 4.19.0 by@​wesleytodd inexpressjs/express#5551

New Contributors

• @​crandmck made their first contribution inexpressjs/express#5541

Full Changelog:expressjs/express@4.18.3...4.19.0

4.18.3

Main Changes

• Fix routing requests without method
• deps: body-parser@1.20.2
  • Fix strict json error message on Node.js 19+
  • deps: content-type@~1.0.5
  • deps: raw-body@2.5.2

Other Changes

• Use https: protocol instead of deprecated git: protocol by@​vcsjones inexpressjs/express#5032
• build: Node.js@16.18 and Node.js@18.12 by@​abenhamdine inexpressjs/express#5034
• ci: update actions/checkout to v3 by@​armujahid inexpressjs/express#5027
• test: remove unused function arguments in params by@​raksbisht inexpressjs/express#5124
• Remove unused originalIndex from acceptParams by@​raksbisht inexpressjs/express#5119
• Fixed typos by@​raksbisht inexpressjs/express#5117
• examples: remove unused params by@​raksbisht inexpressjs/express#5113
• fix: parameter str is not described in JSDoc by@​raksbisht inexpressjs/express#5130
• fix: typos in History.md by@​raksbisht inexpressjs/express#5131
• build : add Node.js@19.7 by@​abenhamdine inexpressjs/express#5028
• test: remove unused function arguments in params by@​raksbisht inexpressjs/express#5137

... (truncated)

Sourced fromexpress's changelog.

4.19.2 / 2024-03-25

• Improved fix for open redirect allow list bypass

4.19.1 / 2024-03-20

• Allow passing non-strings to res.location with new encoding handling checks

4.19.0 / 2024-03-20

• Prevent open redirect allow list bypass due to encodeurl
• deps: cookie@0.6.0

4.18.3 / 2024-02-29

• Fix routing requests without method
• deps: body-parser@1.20.2
  • Fix strict json error message on Node.js 19+
  • deps: content-type@~1.0.5
  • deps: raw-body@2.5.2
• deps: cookie@0.6.0
  • Addpartitioned option

• 04bc627 4.19.2
• da4d763 Improved fix for open redirect allow list bypass
• 4f0f6cc 4.19.1
• a003cfa Allow passing non-strings to res.location with new encoding handling checks f...
• a1fa90f fixed un-edited version in history.md for 4.19.0
• 11f2b1d build: fix build due to inconsistent supertest behavior in older versions
• 084e365 4.19.0
• 0867302 Prevent open redirect allow list bypass due to encodeurl
• 567c9c6 Add note on how to update docs for new release (#5541)
• 69a4cf2 deps: cookie@0.6.0
• Additional commits viewable incompare view

This version was pushed to npm bywesleytodd, a new releaser for express since your current version.

Sourced frommarkdown-it's changelog.

[12.3.2] - 2022-01-08

Security

• Fix possible ReDOS in newline rule. Thanks to@​MakeNowJust.

[12.3.1] - 2022-01-07

Fixed

• Fix corner case when tab prevents paragraph continuation in lists,#830.

[12.3.0] - 2021-12-09

Changed

• StateInline.delimiters[].jump is removed.

Fixed

• Fixed quadratic complexity in pathological***<10k stars>***a***<10k stars>*** case.

[12.2.0] - 2021-08-02

Added

• Ordered lists: add order value to token info.

Fixed

• Always suffix indented code block with a newline,#799.

[12.1.0] - 2021-07-01

Changed

• Updated CM spec compatibility to 0.30.

[12.0.6] - 2021-04-16

Fixed

• Newline inalt should be rendered,#775.

[12.0.5] - 2021-04-15

Fixed

• HTML block tags with=== inside are no longer incorrectly interpreted as headers,#772.
• Fix table/list parsing ambiguity,#767.

[12.0.4] - 2020-12-20

Fixed

• Fix crash introduced in12.0.3 when processing strikethrough (~~) and similar plugins,#742.
• Avoid fenced token mutation,#745.

[12.0.3] - 2020-12-07

Fixed

... (truncated)

• d72c68b 12.3.2 released
• aca3396 dist rebuild
• ffc49ab Fix possible ReDOS in newline rule.
• 76469e8 12.3.1 released
• ae5a243 dist rebuild
• 1cd8a51 Fix tab preventing paragraph continuation in lists
• 830757c Fix spelling error in question Github Template (#835)
• 2e31d34 12.3.0 released
• 393354c Dist rebuild
• 8564eed Dev deps bump
• Additional commits viewable incompare view

Sourced fromnunjucks's releases.

v3.2.4

What's Changed

• fix: html encode backslashes if used with escape filter or autoescape by@​fdintino inmozilla/nunjucks#1437. FixesCVE-2023-2142 ([bugzilla#1825980](https://bugzilla.mozilla.org/show_bug.cgi?id=1825980))

Full Changelog:mozilla/nunjucks@v3.2.3...v3.2.4

Sourced fromnunjucks's changelog.

3.2.4 (Apr 13 2023)

• HTML encode backslashes when expressions are passed through the escapefilter (including when this is done automatically with autoescape). Mergeof#1437.

• 86a77f4 Release v3.2.4
• ec16d21 fix: html encode backslashes if used with escape filter or autoescape (#1437)
• See full diff incompare view

Sourced fromsemver's releases.

v5.7.2

5.7.2 (2023-07-10)

Bug Fixes

• 2f8fd41#585 better handling of whitespace (#585) (@​joaomoreno,@​lukekarrys)

Sourced fromsemver's changelog.

5.7.2 (2023-07-10)

Bug Fixes

• 2f8fd41#585 better handling of whitespace (#585) (@​joaomoreno,@​lukekarrys)

5.7

• AddminVersion method

5.6

• Move booleanloose param to an options object, withbackwards-compatibility protection.
• Add ability to opt out of special prerelease version handling withtheincludePrerelease option flag.

5.5

• Add version coercion capabilities

5.4

• Add intersection checking

5.3

• AddminSatisfying method

5.2

• Addprerelease(v) that returns prerelease components

5.1

• Add Backus-Naur for ranges
• Remove excessively cute inspection methods

5.0

• Remove AMD/Browserified build artifacts
• Fix ltr and gtr when using the* range
• Fix for range* with a prerelease identifier

• f8cc313 chore: release 5.7.2
• 2f8fd41 fix: better handling of whitespace (#585)
• deb5ad5 chore:@​npmcli/template-oss@​4.16.0
• See full diff incompare view

This version was pushed to npm bylukekarrys, a new releaser for semver since your current version.

Sourced from@​babel/traverse's releases.

v7.25.3 (2024-07-31)

🐛 Bug Fix

• babel-plugin-bugfix-firefox-class-in-computed-class-key,babel-traverse
  • #16699 Avoid validating visitors produced bytraverse.visitors.merge (@​nicolo-ribaudo)

🏠 Internal

• babel-parser
  • #16688 Add@babel/types as a dependency of@babel/parser (@​nicolo-ribaudo)

Committers: 2

• Huáng Jùnliàng (@​JLHwung)
• Nicolò Ribaudo (@​nicolo-ribaudo)

v7.25.2 (2024-07-30)

🐛 Bug Fix

• babel-core,babel-traverse
  • #16695 Ensure thatrequeueComputedKeyAndDecorators is available (@​nicolo-ribaudo)

Committers: 2

• Huáng Jùnliàng (@​JLHwung)
• Nicolò Ribaudo (@​nicolo-ribaudo)

v7.25.1 (2024-07-28)

🐛 Bug Fix

• babel-plugin-transform-function-name
  • #16683 fix:ensureFunctionName may be undefined (@​liuxingbaoyu)
• babel-plugin-transform-react-constant-elements
  • #16582 fix plugin-transform-react-constant-elements transform JSXFrament but not add JSXExpressionContainer (@​keiseiTi)
• babel-traverse
  • #16587 fix: fixed issue16583 + test (@​nerodesu017)

🏠 Internal

• #16663 Test eslint plugin against eslint 9 (@​JLHwung)

Committers: 4

• Adrian (@​nerodesu017)
• Huáng Jùnliàng (@​JLHwung)
• @​keiseiTi
• @​liuxingbaoyu

v7.25.0 (2024-07-26)

Thanks@​davidtaylorhq and@​slatereax for your first PR!

You can find the release blog post with some highlights athttps://babeljs.io/blog/2024/07/26/7.25.0.

👓 Spec Compliance

... (truncated)

Sourced from@​babel/traverse's changelog.

v7.25.3 (2024-07-31)

🐛 Bug Fix

• babel-plugin-bugfix-firefox-class-in-computed-class-key,babel-traverse
  • #16699 Avoid validating visitors produced bytraverse.visitors.merge (@​nicolo-ribaudo)

🏠 Internal

• babel-parser
  • #16688 Add@babel/types as a dependency of@babel/parser (@​nicolo-ribaudo)

v7.25.2 (2024-07-30)

🐛 Bug Fix

• babel-core,babel-traverse
  • #16695 Ensure thatrequeueComputedKeyAndDecorators is available (@​nicolo-ribaudo)

v7.25.1 (2024-07-28)

🐛 Bug Fix

• babel-plugin-transform-function-name
  • #16683 fix:ensureFunctionName may be undefined (@​liuxingbaoyu)
• babel-plugin-transform-react-constant-elements
  • #16582 fix plugin-transform-react-constant-elements transform JSXFrament but not add JSXExpressionContainer (@​keiseiTi)
• babel-traverse
  • #16587 fix: fixed issue16583 + test (@​nerodesu017)

🏠 Internal

• #16663 Test eslint plugin against eslint 9 (@​JLHwung)

v7.25.0 (2024-07-26)

👓 Spec Compliance

• babel-helpers,babel-plugin-proposal-explicit-resource-management,babel-runtime-corejs3
  • #16537await using normative updates (@​JLHwung)
• babel-plugin-transform-typescript
  • #16602 Ensure enum members syntactically determinable to be strings do not get reverse mappings (@​liuxingbaoyu)

🚀 New Feature

• babel-helper-create-class-features-plugin,babel-helper-function-name,babel-helper-plugin-utils,babel-helper-wrap-function,babel-plugin-bugfix-safari-class-field-initializer-scope,babel-plugin-bugfix-safari-id-destructuring-collision-in-function-expression,babel-plugin-transform-classes,babel-plugin-transform-function-name,babel-preset-env,babel-traverse,babel-types
  • #16658 MoveensureFunctionName toNodePath.prototype (@​nicolo-ribaudo)
• babel-helper-hoist-variables,babel-helper-plugin-utils,babel-plugin-proposal-async-do-expressions,babel-plugin-transform-modules-systemjs,babel-traverse
  • #16644 MovehoistVariables toScope.prototype (@​nicolo-ribaudo)
• babel-helper-create-class-features-plugin,babel-helper-module-transforms,babel-helper-plugin-utils,babel-helper-split-export-declaration,babel-plugin-transform-classes,babel-traverse,babel-types
  • #16645 MovesplitExportDeclaration toNodePath.prototype (@​nicolo-ribaudo)
• babel-helper-create-class-features-plugin,babel-helper-environment-visitor,babel-helper-module-transforms,babel-helper-plugin-utils,babel-helper-remap-async-to-generator,babel-helper-replace-supers,babel-plugin-bugfix-firefox-class-in-computed-class-key,babel-plugin-bugfix-v8-static-class-fields-redefine-readonly,babel-plugin-transform-async-generator-functions,babel-plugin-transform-classes,babel-traverse
  • #16649 Moveenvironment-visitor helper into@babel/traverse (@​nicolo-ribaudo)
• babel-core,babel-parser
  • #16480 Expose wether a module has TLA or not as.extra.async (@​nicolo-ribaudo)
• babel-compat-data,babel-plugin-bugfix-safari-class-field-initializer-scope,babel-preset-env
  • #16569 Introducebugfix-safari-class-field-initializer-scope (@​davidtaylorhq)
• babel-plugin-transform-block-scoping,babel-traverse,babel-types
  • #16551 AddNodePath#getAssignmentIdentifiers (@​JLHwung)
• babel-helper-import-to-platform-api,babel-plugin-proposal-json-modules

... (truncated)

• 787c7cd v7.25.3
• 992c6e0 Avoid validating visitors produced bytraverse.visitors.merge (#16699)
• 44efb5f print@​babel/traverse version on unknown AST types (#16701)
• 0f8f408 v7.25.2
• 6a15d7a Ensure thatrequeueComputedKeyAndDecorators is available (#16695)
• 2413d1a Add eslint-plugin-regexp (#16680)
• 6bfc823 v7.25.1
• 801d3cb fix: improve variable declarator removal (#16587)
• d2e3ee2 v7.25.0
• d364545 MoveensureFunctionName toNodePath.prototype (#16658)
• Additional commits viewable incompare view

Sourced fromprotobufjs's releases.

protobufjs: v7.3.2

7.3.2 (2024-06-12)

Bug Fixes

• docs: Update readme to correct command for creating types (#1939) (0f9d477)
• Also fixes an issue with 7.3.1, where the dist/ folder containing the build artifacts was missing on npm.

protobufjs: v7.3.1

7.3.1 (2024-06-05)

Bug Fixes

• types: reserved field in IType can contain reserved names (#2001) (d1d2c0c)

protobufjs: v7.3.0

7.3.0 (2024-05-10)

Features

• add handling for extension range options (#1990) (2d58011)

protobufjs: v7.2.6

7.2.6 (2024-01-16)

Bug Fixes

• report missing import properly in loadSync (#1960) (af3ff83)

protobufjs: v7.2.5

7.2.5 (2023-08-21)

Bug Fixes

• crash in comment parsing (#1890) (eaf9f0a)
• deprecation warning for new Buffer (#1905) (e93286e)
• possible infinite loop when parsing option (#1923) (f2a8620)

protobufjs: v7.2.4

7.2.4 (2023-06-23)

Bug Fixes

• do not let setProperty change the prototype (#1899) (e66379f)

... (truncated)

Sourced fromprotobufjs's changelog.

7.3.2 (2024-06-12)

Bug Fixes

• docs: Update readme to correct command for creating types (#1939) (0f9d477)

7.3.1 (2024-06-05)

Bug Fixes

• types: reserved field in IType can contain reserved names (#2001) (d1d2c0c)

7.3.0 (2024-05-10)

Features

• add handling for extension range options (#1990) (2d58011)

7.2.6 (2024-01-16)

Bug Fixes

• report missing import properly in loadSync (#1960) (af3ff83)

7.2.5 (2023-08-21)

Bug Fixes

• crash in comment parsing (#1890) (eaf9f0a)
• deprecation warning for new Buffer (#1905) (e93286e)
• possible infinite loop when parsing option (#1923) (f2a8620)

7.2.4 (2023-06-23)

Bug Fixes

• do not let setProperty change the prototype (#1899) (e66379f)

7.2.3 (2023-03-27)

Bug Fixes

• type names can be split into multiple tokens (#1877) (8817ee6)

... (truncated)

• 0a0cdb6 chore: release master (#2005)
• 0f9d477 fix(docs): Update readme to correct command for creating types (#1939)
• a71ef76 chore: release master (#2002)
• d1d2c0c fix(types): reserved field in IType can contain reserved names (#2001)
• 11393ea chore: Renovate README.md (#1995)
• 722b635 chore: release master (#1991)
• 2d58011 feat: add handling for extension range options (#1990)
• 2f846fe chore: release master (#1962)
• af3ff83 fix: report missing import properly in loadSync (#1960)
• 4436cc7 chore: release master (#1925)
• Additional commits viewable incompare view

Sourced from@​google-cloud/appengine-admin's releases.

generativelanguage: v2.6.0

2.6.0 (2024-06-26)

Features

• [generativelanguage] Add code execution (#5506) (13034af)
• [generativelanguage] Add content caching (#5451) (75c026f)

video-stitcher: v2.4.0

2.4.0 (2024-06-03)

Features

• [video-stitcher] add apis for Create, Read, Update, Delete for VODConfigs (#5378) (10d9310)

Sourced from@​google-cloud/appengine-admin's changelog.

3.3.0 (2024-05-21)

Features

• [Many APIs] update Nodejs generator to send API versions in headers for GAPICs (#5350) (6c03873)
• [Many APIs] update Nodejs generator to send API versions in headers for GAPICs (#5351) (01f48fc)
• [Many APIs] update Nodejs generator to send API versions in headers for GAPICs (#5354) (a9784ed)

3.2.0 (2024-04-16)

Features

• [Many APIs] support GOOGLE_CLOUD_UNIVERSE_DOMAIN environment variable (#5185) (cc54e98)

3.1.0 (2024-02-09)

Features

• Trusted Private Cloud support, use the universeDomain parameter (#5022) (b6498d8)

3.0.1 (2023-09-06)

Bug Fixes

• [Many APIs] simplify logic for HTTP/1.1 REST fallback option (#4583) (c3ddba8)

3.0.0 (2023-08-06)

⚠ BREAKING CHANGES

• migrate to Node 14 (#4443)

Bug Fixes

• [Many APIs] fix typings for IAM methods (#4459) (1d510be)

Miscellaneous Chores

• Migrate to Node 14 (#4443) (2260f12)

2.2.2 (2023-04-13)

Bug Fixes

... (truncated)

• 45aa7f1 chore(deps): update dependency gapic-tools to v0.4.0 (#5104)
• e7b43e8 chore: upgrade c8 to v9 (#5066)
• f49589c chore: release main (#5030)
• b6498d8 feat: Trusted Private Cloud support, use the universeDomain parameter (#5022)
• 9bb3b37 chore(deps): update dependency gapic-tools to v0.3.0 (#4958)
• 4b0b1f9 chore: update copyright year (#4909)
• fe7dc9e chore: remove compile-protos from prepare script (#4829)
• 31d107b chore(deps): update dependency@​types/sinon to v17 (#4791)
• 362152e chore(deps): update dependency sinon to v17 (#4754)
• 4b6ac7d chore(deps): update dependency pack-n-play to v2 (#4716)
• Additional commits viewable incompare view

Sourced from@​google-cloud/cloudbuild's releases.

kms: v4.5.0

4.5.0 (2024-06-21)

Features

• [kms] support Key Access Justifications policy configuration (#5479) (a6a77c9)

gke-hub: v4.5.0

4.5.0 (2024-06-26)

Features

• [gkehub] add a new fieldPENDING underDeploymentState enum (#5472) (dc87003)

datacatalog: v4.5.0

4.5.0 (2024-08-09)

Features

• [datacatalog] add DataplexTransferStatus enum and field to TagTemplate (#5573) (bebe50e)

vision: v4.3.2

4.3.2 (2024-08-19)

Bug Fixes

• deps: Update dependency natural to v8 (#5613) (aff05fb)

vision: v4.3.1

4.3.1 (2024-08-09)

Bug Fixes

• deps: Update dependency redis to ~4.7.0 (#5589) (8ba7182)

resource-settings: v4.0.0

4.0.0 (2024-06-05)

⚠ BREAKING CHANGES

• [resourcesettings] Resource Settings is deprecated. As of November 7, 2023, no organizations will be onboarded for any of the enabled settings, and the service will be shut down on October 1, 2024 (#5420)

Documentation

... (truncated)

Sourced from@​google-cloud/cloudbuild's changelog.

4.5.0 (2024-05-21)

Features

• [Many APIs] update Nodejs generator to send API versions in headers for GAPICs (#5351) (01f48fc)
• [Many APIs] update Nodejs generator to send API versions in headers for GAPICs (#5354) (a9784ed)

4.4.0 (2024-03-29)

Features

• [Many APIs] add several fields to manage state of database encryption update (#5192) (b926f13)

4.3.0 (2024-03-23)

Features

• [cloudbuild] Add Bitbucket Data Center Config and Bitbucket Cloud config for Cloud Build Repositories (#5132) (334e7b9)

4.2.0 (2024-02-09)

Features

• Trusted Private Cloud support, use the universeDomain parameter (#5028) (852f3eb)

4.1.1 (2024-01-23)

Bug Fixes

• [Many APIs] improve retry logic for streaming API calls (#4968) (7fbf16c)

4.1.0 (2023-11-03)

Features

• [cloudbuild] Add optional field "SourceFetcher" to choose source fetcher tool (#4784) (ff42e4e)

4.0.1 (2023-09-06)

Bug Fixes

• [Many APIs] simplify logic for HTTP/1.1 REST fallback option (#4589) (07967ad)

... (truncated)

• 18c40f4 build: [Many APIs] update gapic generator to allow individual location mixin ...
• aed952e chore(deps): update dependency sinon to v18 (#5365)
• 30376f3 chore: release main (#5363)
• a4ab109 chore: [Many APIs] update copyright year (#5329)
• 5067a61 chore: release main (#5181)
• b926f13 feat: [Many APIs] add several fields to manage state of database encryption u...
• 054cb8a chore: release main (#5136)
• 334e7b9 feat: [cloudbuild] Add Bitbucket Data Center Config and Bitbucket Cloud confi...
• 45aa7f1 chore(deps): update dependency gapic-tools to v0.4.0 (#5104)
• e7b43e8 chore: upgrade c8 to v9 (#5066)
• Additional commits viewable incompare view

Sourced from@​google-cloud/secret-manager's changelog.

• See full diff incompare view

• 74b2db2 3.0.3
• 88f1429 update eslint. lint, fix unit tests.
• 415d660 Snyk js braces6838727 (#40)
• 190510f fix tests, skip 1 test in test/braces.expand
• 716eb9f readme bump
• a5851e5 Merge pull request#37 from coderaiser/fix/vulnerability
• 2092bd1 feature: braces: add maxSymbols (https://github.com/micromatch/braces/issues/...
• 9f5b4cf fix: vulnerability (https://security.snyk.io/vuln/SNYK-JS-BRACES-6838727)
• 98414f9 remove funding file
• 665ab5d update keepEscaping doc (Description has been truncated